CVE-2023-28368
Last modified
CVE-2023-28368 is a medium-severity vulnerability rated 5.7/10 on the CVSS scale. TP-Link L2 switch T2600G-28SQ firmware versions prior to 'T2600G-28SQ(UN)_V1_1.0.6 Build 20230227' uses vulnerable SSH host keys. A fake device may be prepared to spoof the affected device with the vulnerable host key.If the administrator may be tricked to login to the fake device, the credential information for the affected device may be obtained.. EPSS estimates a 0.27% chance of exploitation in the next 30 days.
Description
TP-Link L2 switch T2600G-28SQ firmware versions prior to 'T2600G-28SQ(UN)_V1_1.0.6 Build 20230227' uses vulnerable SSH host keys. A fake device may be prepared to spoof the affected device with the vulnerable host key.If the administrator may be tricked to login to the fake device, the credential information for the affected device may be obtained.
Metrics
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Tp-Link | T2600g-28sq Firmware | 20190530 |
| Tp-Link | T2600g-28sq Firmware | 20200304 |
References
- https://jvn.jp/en/jp/JVN62420378/Third Party Advisory
- https://jvn.jp/en/jp/JVN62420378/Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2023-28368?
How severe is CVE-2023-28368?
How do I fix CVE-2023-28368?
Are you affected by CVE-2023-28368?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST